This suggests there is a strong correlation between "security bug" and plain old "regular bug". It makes me think a fewer bugs a product has the more secure it probably is. If an app crashes, it shows something isn't working the way it should, and a bad guy may be able to exploit that.

Conclusion: time spent making an app stable is also making it more secure.﻿